Lucene search
PRIOn knowledge basePRION:CVE-2023-4390HistoryOct 31, 2023 - 2:15 p.m.
Design/Logic Flaw
2023-10-3114:15:00
PRIOn knowledge base
www.prio-n.com
3
popup box
wordpress plugin
design flaw
logic flaw
admin privilege
script injection
nvd
The Popup box WordPress plugin before 3.7.2 does not sanitize and escape some Popup fields, which could allow high-privilege users such as an administrator to inject arbitrary web scripts even when the unfiltered_html capability is disallowed (for example in a multisite setup).
Related
wpexploit
wpexploit
Popup box < 3.7.2 - Admin+ Stored Cross-Site Scripting
2023-10-09 00:00:00
nvd
nvd
CVE-2023-4390
2023-10-31 14:15:11
cvelist
cvelist
CVE-2023-4390 Popup box < 3.7.2 - Admin+ Stored Cross-Site Scripting
2023-10-31 13:54:45
cve
cve
CVE-2023-4390
2023-10-31 14:15:11
wpvulndb
wpvulndb
Popup box < 3.7.2 - Admin+ Stored Cross-Site Scripting
2023-10-09 00:00:00